$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft File: 2MHMikY6MVDL7AhlTmF4ANZuU-k.mft (raw, json) Hash identifier: QdyIMTERJTKoNYxKZbuUVEqo1EfvVqWHk4Q2m/IPu3s= Subject key identifier: 0E:CF:31:F9:20:8C:76:DA:DF:70:1E:E0:D2:FA:30:BE:64:64:D9:9F Authority key identifier: D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 Certificate issuer: /CN=A91F89C1/serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft Manifest number: 0692 Signing time: Sun 10 Aug 2025 22:23:19 +0000 Manifest this update: Sun 10 Aug 2025 22:23:19 +0000 Manifest next update: Sun 17 Aug 2025 22:23:19 +0000 Files and hashes: 1: 2MHMikY6MVDL7AhlTmF4ANZuU-k.crl (hash: /rYEkx6wT0rNbeBQNb54SW8acCTZFOvyNlN4wLVxebc=) 2: F00A66308A9C11EB9B2E044BC4F9AE02.roa (hash: HTPqOWIyJHqMlIZAMr3y8PX5c90zicN8031Dpgoj/xo=) 3: 88A31320809211EB938F4016C4F9AE02.roa (hash: +ggMU5apLM7/E36BO1O5K0i1T6Q0H2I5abkvXaYTrxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1, serialNumber=D8C1CC8A463A3150CBEC08654E617800D66E53E9 Validity Not Before: Aug 10 22:23:19 2025 GMT Not After : Aug 17 22:23:19 2025 GMT Subject: CN=68991bd7-fa70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c6:bf:ce:5d:e1:65:8a:b0:4d:9d:4d:ab:7a: af:ba:63:1f:eb:b9:59:47:c5:8a:83:43:b4:2b:b3: 88:e6:82:e9:ff:a2:b5:02:37:86:dd:b1:59:b1:3a: a9:fb:e3:f9:bb:da:9e:24:35:07:61:24:e2:22:e9: 62:df:a5:69:d8:50:bb:f1:ed:bd:e5:34:ab:04:15: 18:4d:69:e7:6e:6e:5a:01:5e:6f:77:75:b0:57:56: 4f:b7:99:fa:22:94:93:65:e6:fc:5d:22:20:2a:db: 55:45:c4:6b:42:9a:09:89:eb:f5:93:98:d6:85:5b: dc:76:b9:83:4a:47:84:f9:f2:4d:08:8d:c7:26:99: a7:bf:72:a0:04:d1:50:f3:29:9f:7a:73:ea:12:50: 38:02:e3:7c:01:7c:09:d8:71:52:5d:c3:27:b0:3b: 05:aa:08:c1:ec:55:24:50:81:6b:2e:a8:42:86:6e: 8f:bb:db:01:2f:6c:05:89:b7:dc:5a:5c:61:1c:46: 6d:7a:b9:26:89:eb:49:3f:24:f8:8a:c8:24:44:50: b2:6c:a5:4e:d0:83:b4:e8:28:3e:2d:78:12:9f:04: 58:56:ff:dc:30:04:7b:c8:d2:49:e5:a2:cc:92:01: d6:f1:cd:0b:08:0c:77:b4:48:4d:c4:0b:dc:6b:41: 2c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CF:31:F9:20:8C:76:DA:DF:70:1E:E0:D2:FA:30:BE:64:64:D9:9F X509v3 Authority Key Identifier: keyid:D8:C1:CC:8A:46:3A:31:50:CB:EC:08:65:4E:61:78:00:D6:6E:53:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2MHMikY6MVDL7AhlTmF4ANZuU-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/0A3F269C808611EBB4C6D116C4F9AE02/2MHMikY6MVDL7AhlTmF4ANZuU-k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:53:93:57:14:46:da:0a:d8:dc:73:ec:40:ee:d1:79:bf:e6: 1f:97:2f:6b:b5:7f:9b:b5:ae:0c:79:f5:20:28:06:66:4a:0b: d2:43:a8:0e:09:af:c6:a6:02:23:e4:bb:ad:ac:eb:de:89:63: cc:c3:71:3d:3d:00:cb:d3:14:d8:59:c4:fe:bd:a5:86:1b:85: 18:7c:81:bd:0f:59:ec:27:31:ab:c4:35:a5:d9:25:7c:20:09: f1:2f:3f:41:eb:49:41:8f:a7:1e:bb:a9:32:45:fc:ad:dc:cc: 4c:8f:30:09:c8:1f:db:65:96:97:4c:90:71:da:01:59:bf:fd: be:77:51:1d:c5:25:08:7a:9a:f4:1a:cc:3e:ca:09:47:f0:d8: 3e:73:50:06:38:b2:d9:a4:25:85:ed:a5:99:76:d8:7e:e4:b4: 4d:2b:79:e4:3d:77:9d:25:83:66:2b:d2:2b:94:66:92:f3:1b: 06:f2:1c:68:80:e8:5d:85:17:07:89:39:cb:22:d9:cf:17:f5: f3:be:c5:7f:b2:ec:c2:4e:64:bd:f7:2e:e2:05:6d:c3:18:f3: b3:84:f9:e4:f8:a5:02:37:39:54:00:8e:d3:ea:aa:b0:1a:b8: 57:3b:a6:ab:1b:a8:53:f0:47:0e:ba:3d:c6:4f:e1:98:fa:66: 11:d9:7f:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKEQ4QzFDQzhBNDYzQTMxNTBDQkVDMDg2NTRFNjE3ODAw RDY2RTUzRTkwHhcNMjUwODEwMjIyMzE5WhcNMjUwODE3MjIyMzE5WjAYMRYwFAYD VQQDEw02ODk5MWJkNy1mYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8a/zl3hZYqwTZ1Nq3qvumMf67lZR8WKg0O0K7OI5oLp/6K1AjeG3bFZsTqp ++P5u9qeJDUHYSTiIuli36Vp2FC78e295TSrBBUYTWnnbm5aAV5vd3WwV1ZPt5n6 IpSTZeb8XSIgKttVRcRrQpoJiev1k5jWhVvcdrmDSkeE+fJNCI3HJpmnv3KgBNFQ 8ymfenPqElA4AuN8AXwJ2HFSXcMnsDsFqgjB7FUkUIFrLqhChm6Pu9sBL2wFibfc WlxhHEZterkmietJPyT4isgkRFCybKVO0IO06Cg+LXgSnwRYVv/cMAR7yNJJ5aLM kgHW8c0LCAx3tEhNxAvca0EswQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7PMfkg jHba33Ae4NL6ML5kZNmfMB8GA1UdIwQYMBaAFNjBzIpGOjFQy+wIZU5heADWblPp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8wQTNGMjY5Qzgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1WREw3QWhsVG1GNEFOWnVV LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJNSE1pa1k2TVZETDdBaGxUbUY0QU5adVUtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlDMS8wQTNGMjY5QzgwODYxMUVCQjRDNkQxMTZDNEY5QUUwMi8yTUhNaWtZNk1W REw3QWhsVG1GNEFOWnVVLWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0U5NXFEbaCtjcc+xA7tF5v+Yfly9rtX+bta4MefUgKAZmSgvSQ6gO Ca/GpgIj5LutrOveiWPMw3E9PQDL0xTYWcT+vaWGG4UYfIG9D1nsJzGrxDWl2SV8 IAnxLz9B60lBj6ceu6kyRfyt3MxMjzAJyB/bZZaXTJBx2gFZv/2+d1EdxSUIepr0 Gsw+yglH8Ng+c1AGOLLZpCWF7aWZdth+5LRNK3nkPXedJYNmK9IrlGaS8xsG8hxo gOhdhRcHiTnLItnPF/XzvsV/suzCTmS99y7iBW3DGPOzhPnk+KUCNzlUAI7T6qqw GrhXO6arG6hT8EcOuj3GT+GY+mYR2X+Y -----END CERTIFICATE-----Generated at Mon Aug 11 04:31:56 2025 by rpki-client